Policies‎ > ‎

Data Protection Policy

Data Protection and Record-keeping Policy



This policy was formulated by Staff and Board of Management of Scoil Mhuire. The purpose of the policy is to identify the records required to be retained by the school and to ensure confidentiality and manageable procedures in relation to access to such records by parents and stake holders.



  • A policy on data protection and record keeping is necessary to ensure that the school has proper procedures in place in relation to accountability and transparency
  • It is good practice to record pupil progress so as to identify learning needs
  • A policy must be put in place to ensure a school complies with legislation such as;


    • Education Act, Section 9g requiring a school to provide access to records to students over 18/parents
    • Education Welfare Act – requiring a school to report school attendance and transfer of pupils.


Relationship to School Ethos:

Scoil Mhuire promotes communication and co-operation between staff, parents and pupils as a means towards providing the caring environment through which a child can develop and grow to his/her full potential.




  • To ensure the school complies with legislative requirements
  • To clarify the types of records maintained and the procedures relating to making them available to the relevant bodies
  • To put in place a proper recording and reporting framework on the educational progress of pupils
  • To establish clear guidelines on making these records available to parents and past pupils who are over 18
  • To stipulate the length of time records and reports will be retained.



The Principal assumes the function of data controller and supervises the application of the Data Protection Act within the school. The data under the control of the Principal comes under the following headings.


1.       Personal Data:

This data relates to personal details of the students such as name, address, date of birth, gender, ethnic origin, nationality, religious belief, medical details, dietary information, PPSN, contact details and parents names. These are kept in room 13 in a locked filing cabinet.


2.       Student Records:

Student records are held by each class teacher in a locked filing cabinet and some of this information is recorded on the databiz on the computer.  


Student records may contain:


  • Personal details of the student
  • Medical sensitive data
  • School report cards
  • Psychological/Clinical/Occupational Therapy/Speech and Language Assessments
  • Standardised Test Results
  • Attendance Records
  • Screening records such as MIST and NRIT
  • Data Protection
  • Diagnostic Tests Reports
  • Individual Education Plans
  • Learning Support/Resource Data such as records of permission/refusal to access LS/RT services in the school,
  • Details of behavioural incidents or accidents.
  • Custodial arrangements where relevant.


3.       Staff Data

This data relates to personal and professional details of the Staff such as name, address, date of birth, contact details, payroll number, attendance records, qualifications, school records, sick leave, CPD, curriculum vitae/job application form,  school returns, classes taught and seniority


4.       Administrative Data:

  • Attendance Reports, Roll Book, Registers
  • Accident Report Book
  • Administration of Medicines Indemnity Form
  • Policies
  • HSE files
  • Board of Management files
  • Accounts
  • Cuntas Míosuil


Access to Records:

The following will have access where relevant and appropriate to the data listed above;


  • Parents/guardians
  • Past pupils over 18
  • Health Service Executive
  • Designated school personnel
  • Department of Education & Skills
  • First and second-level schools (where relevant).
  • The school transfer form.


A parental authorisation form must be completed by parents in the event of data being transferred to outside agencies such as health professionals etc. Outside agencies requesting access to records must do so in writing giving a minimum of seven days notice.  Parents/Guardians can make such a request either by email or in writing. The right to erasure or rectification is available to change any mistakes or inaccuracies by proper authorisation through the same procedures.


 A standardised school report form is used in the school (as recommended by the DES). This report is issued to parents annually in June and a copy is kept on file.  



All records are stored in the school.

Records are stored in locked filing cabinets.


A pupil profile and selection of records are held by each teacher in his/her individual classroom and passed on to the next teacher as the child moves to the next class.


All completed school roll books are stored securely.


Access to these stored files is restricted to authorised personnel only. 


Computerised records, systems are password protected. Some records are backed up on the school server.


Success Criteria:


  • Compliance with Data Protection Act and Statute of Limitations Act
  • Easy access to records
  • Framework in place for ease of compilation and reporting
  • Manageable storage of records.


Roles and Responsibilities:

The school staff, under the direction of the Principal will implement and monitor this policy.  Individual teachers will design, administer and record all in-class testing.  The Principal will ensure records are maintained and stored, particularly the records of students transferring to another school.


Implementation Data:

This new policy is effective from September 2014.


All records held from before that date will continue to be maintained in the school.



This policy was ratified at a Board of Management Meeting on 17th June 2014.


The policy will be available on the school website and through the office.


It will be reviewed every 2 years and amended if necessary.

Reviewed on the 17th June 2016. 



  • Solas (CPSMA) May-June 2001
  • Education Act 1998
  • Education Welfare Act 2000
  • Date Protection Act 2003
  • Freedom of Information Act